Workshop in English - US at SunshinePHP 2020
View Slides: https://speakerdeck.com/ericmann/evolution-of-php-security-4eb56c08-9eff-4aec-b4a4-3d803f151437
Checkout the code: https://github.com/ericmann/notes-tutorial
Short URL: https://joind.in/talk/db81e (QR-Code (opens in new window))
Regardless of reports to the contrary, PHP is a modern, scalable, secure programming language suitable for any number of applications. As with any other language or tool, PHP can only be used securely if the developers using it wield their tools safely. This training class will walk through best practices in: * Password management (including hashing) * Credentials management (API keys) * Data encryption (both local and remote) * Data integrity (i.e., signing and authentication) * Server hardening Attendees will leave with a better understanding of PHP and how to use it in secure applications. Attendees should have an operable PHP environment before arriving. They will be given a code repo to use during the training class which will demonstrate the principles being discussed and allows them to practice from-scratch implementations in code.